Systems Engineer, Corporate Security

RampRamp·Remote(New York, NY (HQ))
Software Development

WFA Digital Insight

The demand for skilled systems engineers with a focus on security has grown significantly, with companies like Ramp leading the way in fintech innovation. As the industry continues to evolve, professionals with expertise in identity and access management, as well as endpoint security, are in high demand. With the rise of AI-driven technologies, the ability to secure and manage complex systems is crucial. Ramp stands out for its commitment to building smart infrastructure for finance teams, and this role is a unique opportunity to make a direct impact on the company's security posture.

Job Description

## About the Role The Systems Engineer, Corporate Security role at Ramp is a critical position that requires a deep understanding of identity and access management, endpoint security, and the ability to build and implement secure systems at scale. As a staff-level systems engineer, you will be responsible for owning the systems that control how every employee, contractor, and AI agent at Ramp authenticates, accesses resources, and stays secure. This is a hands-on individual contributor role that will challenge you to think creatively and develop innovative solutions to complex security problems.

The Corporate Security team at Ramp is responsible for keeping the company's people, data, and internal tools safe while enabling a fast-moving, AI-driven business. As a key member of this team, you will work closely with cross-functional teams to harden Ramp's core platforms, manage endpoint defense tooling, and support public sector and compliance requirements.

In this role, you will have the opportunity to make a direct impact on the company's security posture and contribute to the development of AI-driven automation that replaces manual security operations. You will be the technical owner of identity and endpoint infrastructure, building and implementing how Ramp authenticates at scale, hardening devices, and designing automation that replaces manual security work.

## What You Will Do - Own endpoint security and fleet management, building and maintaining the security and compliance of every Mac and PC across all offices and remote employees through Jamf and Intune.

  • Develop and implement device trust enforcement, configuration management, patching, and vulnerability remediation at scale.
  • Own identity and access infrastructure, architecting, building, and operating Ramp's identity platform, including Okta, platform SSO, device-bound authentication, and entitlement governance.
  • Ensure every employee, contractor, and system authenticates securely, and that new tools and vendors can be connected safely without opening gaps.
  • Build AI agents that automate security operations, designing and deploying AI-driven automation to replace manual, repetitive security work.
  • Define AI agent identity governance, determining how AI agents authenticate, what data and systems they can access, and how their activity is audited.
  • Partner on corporate security hardening, working closely with the Corporate Security program team to harden Ramp's core platforms, manage endpoint defense tooling, and support public sector and compliance requirements.
  • Unblock cross-functional teams, keeping the foundation solid so others can build on it without hitting security friction.
## What We Are Looking For - 7+ years of experience in systems engineering, security engineering, or IT security, with deep, hands-on expertise in identity and access management.
  • Experience with Okta, Azure AD/Entra ID, or other identity and access management tools.
  • Strong understanding of endpoint security, including device trust enforcement, configuration management, and vulnerability remediation.
  • Experience with AI-driven automation and machine learning.
  • Strong problem-solving skills, with the ability to think creatively and develop innovative solutions to complex security problems.
  • Excellent communication and collaboration skills, with the ability to work closely with cross-functional teams.
  • Experience with compliance requirements, including FedRAMP and SOC 2.
## Nice to Have - Experience with Cloud Security, including AWS, Azure, or Google Cloud.
  • Familiarity with containerization and orchestration tools, such as Docker and Kubernetes.
  • Experience with security information and event management (SIEM) systems.
  • Certification in security, such as CISSP or CEH.
## Benefits and Perks - Competitive salary and equity package.
  • Comprehensive health, dental, and vision insurance.
  • Flexible PTO and remote work options.
  • Professional development opportunities, including training and conference sponsorship.
  • Access to the latest tools and technologies.
  • Collaborative and dynamic work environment.

How to Stand Out

- To stand out in this role, emphasize your experience with identity and access management, endpoint security, and AI-driven automation.

  • Make sure to highlight your problem-solving skills and ability to think creatively.
  • Be prepared to discuss your experience with compliance requirements and security frameworks.
  • Show a willingness to learn and adapt to new technologies and tools.
  • Don't be afraid to ask questions during the interview process, and be prepared to provide specific examples of your experience.
  • Be sure to research the company culture and values, and be prepared to discuss how you can contribute to them.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.